hello everyone i have noticed some of employees can access the internet although they not allowed so i have traced the problem, i will give you details and hope you can help me first of all i have installed STAS to give access to the internet to specific employees lets say User1 can go online through HR Rule he got IP x.x.x.10 and he can access the internet without problem on other hand User2 is not allowed to go online but User1 turned off his PC now User2 is trying to get IP from DHCP and he got IP x.x.x.10 now User2 can access the internet because of his IP was previously assigned to user who can access the internet anyone faced this issue before ? i would be appreciate any help thx
↧
Forum Post: Users can access internet without permissions
↧
Forum Post: Web Protection blocks Amazon Web Site
I've got two Macs running High Sierra 10.13.2 and Sophos Anti-Virus 9.6.6 as well as Little Snitch 4.04. One works fine, the other blocks amazon.com and smile.amazon.com if web protection is enabled. I've also added these sites to allowed sites with no luck. If I disable web protection it works fine. Any suggestions?
↧
↧
Forum Post: Sophos Home 1.2.9 Beta. Has not received Registry Entry for Meltdown/Spectre Microsoft Patch
I read that updates for Sophos Home were being released yesterday to facilitate the install of the Microsoft Patches for Meltdown/Spectre. So far my computer has not updated with the registry entry to receive the MS Patches. Is 1.2.9 Beta going to receive the patch any time soon?
↧
Forum Post: RE: vpn ssl and Mac OS High Sierra
I've tried with another VN client (Viscosity) : same error. I've also tried to connect on an older Sophos (SG115 UTM9) : it's working perfectly with High Sierra So the problem seems to be between High Sierra and Sophos XG v17. Anybody with an XG model not using v17 to have a try ?
↧
Forum Post: RE: Users can access internet without permissions
Please try to assign static IP address to User1 and User2.
↧
↧
Forum Post: RE: Users can access internet without permissions
iam sorry but i got more than 150 user in my network i think its not a good idea to set static ip for each one of them
↧
Forum Post: XG85 and Google wifi setup - what is the best way?
Hi I have a basic home office set up. I am trying to figure out the best way to set these up. Modem ---> XG85 firewall ----> 8port Gigabit Smart switch (TP-link) --(one in each port)--> several hardwired pcs, Google wifi, Two magic jacks, (chrome casts to the wifi) (lots of android devices to the wifi) Hardwired and wifi printers too. Raspberry pi (retro pi) and gaming stations like Xbox Both the office and the house have to function nicely. My main concern right now is the first 4 things there up to the Google wifi. We have to at least have fast and good wifi that is secure. From reading other posts I have read a triple or double nat to the Google Wifi point is recommended, and not being in bridge mode to the Google wifi point. as to not loose the functionality of the Google device. (which has really nice features like being able to shut off kids devices.) Later I want to set up a login of each person and scanning of their packets for nastys. So I may enable deep packet scanning and some restrictions for the kids. Does anyone have experience with Google wifi. They are nice and packed with features. Thanks Rick M
↧
Forum Post: Cliets show againt 5.7.220 what's meen?
Hi, it's correct that my clients show again 5.7.220 auto update version? It yes when they'll receive the update releted to #meltdown #spectre 5.7.533 ( community.sophos.com/.../128060) My subscription is Recommended. Thanks Marco
↧
Password change procedure for Administrators with Read-Only Profile
Password change procedure for Administrators with Read-Only Profile Applicable Version: 10.00 onwards Overview The Read-Only Administrators or monitor-only administrators cannot change their passwords from the Web Admin Console. However, such administrators can change their passwords using the My Account . Cyberoam end-users are also able to change their passwords using the My Account. Note: - Password change using My Account works only when authentication is done through Cyberoam Local Database. If an external server (AD/RADIUS/LDAP) is used for authentication, administrators or end-users will not be able to change their passwords using My Account. Configuration Step 1: Logon to My Account Browse to http:// . Select Log on to as My Account and specify your username and password to logon. Step 2: Change Password Go to Personal > Change Password > Change Password and specify your current password and new password. Click OK to confirm. Document Version 2.0 - 26 April, 2014 Attachments Password change procedure for Administrators with Read-Only Profile PDF Related Articles Password Recovery Procedure for Cyberoam Article ID: 2380 128069
↧
↧
Password change procedure for Administrators with Read-Only Profile
Password change procedure for Administrators with Read-Only Profile Applicable Version: 10.00 onwards Overview The Read-Only Administrators or monitor-only administrators cannot change their passwords from the Web Admin Console. However, such administrators can change their passwords using the My Account . Cyberoam end-users are also able to change their passwords using the My Account. Note: - Password change using My Account works only when authentication is done through Cyberoam Local Database. If an external server (AD/RADIUS/LDAP) is used for authentication, administrators or end-users will not be able to change their passwords using My Account. Configuration Step 1: Logon to My Account Browse to http:// . Select Log on to as My Account and specify your username and password to logon. Step 2: Change Password Go to Personal > Change Password > Change Password and specify your current password and new password. Click OK to confirm. Document Version 2.0 - 26 April, 2014 Attachments Password change procedure for Administrators with Read-Only Profile PDF Related Articles Password Recovery Procedure for Cyberoam Article ID: 2380 128069
↧
Forum Post: RE: Users can access internet without permissions
In that situation, you can connect AD to firewall and setup permission on user level.
↧
Forum Post: RE: Users can access internet without permissions
i already did that the problem on the IP which assigned to user with internet access privilege then this IP reassign to user without internet access the firewall allow the user go online based on it`s previous action i think the problem in Login Restriction and MAC Binding options on user definition
↧
Forum Post: RE: Installing Central agent over Enterprise Console isn't going well
I would suggest trying the new Central client installer - SophosSetup.exe rather than SophosInstall.exe. Details here: https://community.sophos.com/kb/en-us/127045 Do you see the option under: https://cloud.sophos.com/manage/endpoint/eap to opt into the "New installer for Windows computers and servers". If so, maybe try that. Regards, Jak
↧
↧
Forum Post: RE: [BUGs] Import/Export & Backup/Restore
Hi, I would like to share some additional info in export/import operation. If you want to import SecurityPolicy you have to pay attention to section. Beware of services dependencies, cause the system can't import service with name starting with "#" This worked for me: - export Services - edit Entities.xml (you have to remove # from name) - pack TAR and import - export SecurityPolicy - edit Entities.xml (you have to remove # from # to ) - pack TAR and import
↧
Forum Post: RE: MTU and iRobot Roomba
Ian. Thank you. I have completed these steps. I will have to wait for the robot to get the static IP. I will report back if this works. I really do appreciate your assistance.
↧
Forum Post: threat:
Hi found this threat: PUA not cleaned up: 'Install Core Click run software' at 'C:\Users\Baensch\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V605AS77\jnuB4el63OdNiIWET_PY_g7S9TvgIpGYeBIhpE_5AvWWFiKDgL1sRYUnu9UBcb9wuS1whA1jBvEDqHV4Q. was kann/Muss ich tun?
↧
Forum Post: RE: Cliets show againt 5.7.220 what's meen?
These articles are super helpful: https://community.sophos.com/kb/en-us/128053 and https://community.sophos.com/kb/en-us/128060 . However, 128060 only specifies that the update is "being applied over a number of days". It would be helpful if this article could give us range of days- what's the maximum number of days we should expect for the update to reach us?
↧
↧
Forum Post: RE: threat:
Firstly it's worth mentioning that a PUA or Potentially Unwanted Application is a class of detection really aimed at Administrators to choose if they want to permit such an application in their network. They are not viruses/malware but detections you can choose to authorize. In this case you are looking at this item: https://www.sophos.com/en-us/threat-center/threat-analyses/adware-and-puas/Install%20Core%20Click%20run%20software/detailed-analysis.aspx That said and given the location you mention, the easiest thing might be just clear your browser cache in IE to delete the detected file. If there are any problems, i.e. the Sophos on-access scanner blocks the cleanup of the cache, you could authorize the name as detected first. I.e. "Install Core Click run software" minus the quotes and then perform the cleanup of the browser cache. Regards, Jak
↧
Forum Post: Unable to connect to account.synology.com
I have been having an issue connecting to account.synology.com through my network. I can access it through my phone when on another network but not when at home. Also, isitdownrightnow shows the site is up and running. So the issue seems to be with something on the XG. Using diagnostics on the XG, I cannot IPv4 ping account.synology.com. I can IPv6 ping it. Using the Policy Tester, the XG shows that all connections to account.synology.com are permitted. I cannot see any blocked connection attempts from my computer in the XG firewall logs. Is there something that I'm missing? I am using XG 17.0.3 MR-3. Thanks.
↧
Forum Post: Install Sophos UTM 9 on Synology VMWare ESXI 6.5?
Hi, i want to install the sophos in a vm under my synology nas 1517+. (4lan, intel cpu, 8gb ram) The nas supports esxi 6.5. You can install UTM v9 within the following virtual environments: VMware ESX 5.1 VMware ESX 5.5-6.5 Does it mean esxi is not supported? Thanks for help.
↧